Setting up centralized logging

Marcos Aurelio Rodrigues deigratia33 at gmail.com
Fri Jan 16 00:19:26 UTC 2009


Maybe OSSEC do what you want.

[]s
Marcos




On Thu, Jan 15, 2009 at 2:43 PM, <m.roth2006 at rcn.com> wrote:

> >Date: Thu, 15 Jan 2009 13:51:22 +0000
> >From: "Michael Simpson" <mikie.simpson at gmail.com>
> >Subject: Re: Setting up centralized logging
> >To: "General Red Hat Linux discussion list" <redhat-list at redhat.com>
> >
> >On 1/15/09, Kenneth Holter <kenneho.ndu at gmail.com> wrote:
> >> Thanks for the outline of your setup.
> >>
> >> I'm a bit tempted to go for rsyslog actually, since it's already
> included in
> >> the RHN repository.
> >>
> >> Are there any shortcomings of rsyslog that I should be aware of? I've
> read
> >> that the config file may be more messy than syslog-ng, but that's pretty
> >> much it.
> >>
> >rsyslog integrates nicely with mySQL as well allowing for all sorts of
> >nice information manipulation of really heavy logging loads
> >
> I think syslog-ng does, as well. In my case, though, we had to preserve the
> original logs, in case forensics needs it.
>
>      mark
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>



More information about the redhat-list mailing list